Extracted

• • Target

    9f6a34bf63db368d654c3b3f11501c5e33d1114daf746f815da63a31e5f64ecb

  • Size

    42KB

  • MD5

    e41dd58bc1050e4de7cf63c1512016b3

  • SHA1

    187b8bd91fba9f8e56e4e0b182ad0b2395ca7a88

  • SHA256

    9f6a34bf63db368d654c3b3f11501c5e33d1114daf746f815da63a31e5f64ecb

  • SHA512

    26a0e95ce3a5b6ce05266aa15447afebdec38cd14447f0238b9265d44158e33bfb89244828bf407cfe6c28427a0256d79407328ad9da7aaefbf46a2c8dc7a741

  • SSDEEP

    768:3DFLs44wbJy6pijzvA/LxJTCYncjyhK2BP5JUe/1H5U7:TFLsYDijzvA/1JTCuhhBPhe7

  Score

  10^/10

  berbewbackdoordiscoverypersistence

  • Adds autorun key to be loaded by Explorer.exe on startup

    persistence

  • Berbew

    Berbew is a backdoor written in C++.

    backdoorberbew

  • Berbew family

    berbew

  • Executes dropped EXE

  • Loads dropped DLL

  • Drops file in System32 directory

  behavioral1behavioral2